summaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2014-08-20Merge branch 'master' into daneJeremy Harris
Conflicts: doc/doc-txt/ChangeLog src/src/tls-openssl.c src/src/transports/smtp.c src/src/verify.c
2014-08-20Expanded EXPERIMENTAL_TPDA featureJeremy Harris
Note this introduces incompatible changes; users who are compiling the feature in, and with configuration files using it, will need to change their configurations appropriately. See the experimental-spec.txt file.
2014-08-18Merge remote-tracking branch 'exim_github/pr/16'Todd Lyons
2014-08-17Safer coding for utf8clean expansion operatorJeremy Harris
2014-08-17Log an error (instead of hanging) if Dovecot auth is configured to use the ↵Timo Sirainen
wrong auth-master/auth-userdb socket.
2014-08-17Unbreak utf8clean testcase.Jeremy Harris
Broken by my compile quitening; the issue was a variable declared local in a loop body and used for carrying data from one iteration to the next. I'd blindly added an initialiser, destroying the data. However, I *think* that compilers might be at liberty to not use the same location for separate iterations; if so the code was broken (and only worked by chance). Fix by moving the declaration outside the loop.
2014-08-17Override an unchanged default hosts_request_ocsp when DANE is usedJeremy Harris
2014-08-17Feature compile-guardJeremy Harris
2014-08-17Add observability variables and provision for avoiding OCSP conflictsJeremy Harris
2014-08-16Break out dane code to separate functionsJeremy Harris
2014-08-15Compiler quieteningJeremy Harris
2014-08-14Fix fakens TLSA generation and DANE TLSA lookupJeremy Harris
2014-08-14Fix non-dane buildJeremy Harris
2014-08-14OpenBSD 5.5 removed arc4random_stirTodd Lyons
2014-08-11Do not sleep for tiny periods, or hang trying to sleep for zero. Bug 1426Jeremy Harris
2014-08-11Better logging of OCSP failsJeremy Harris
2014-08-10Enable OCSPJeremy Harris
2014-08-10Change CV= log line element for dane-verified certJeremy Harris
2014-08-10Capture the knowlege that verification succeededJeremy Harris
2014-08-10Verifiable conn with DANE-EE(3) / SPKI(1) / SHA2-512(2)Jeremy Harris
2014-08-10Add support in the fakens utility for TLSA recordsJeremy Harris
2014-08-10On a host lookup name->MX->A->ip sequence, require both stages toJeremy Harris
be dnssec before declaring the lookup was secure.
2014-08-08Test developmentJeremy Harris
2014-08-08Bug 1509: Add parser for DSN spool linesexim-4_84_RC2Wolfgang Breyha
DSN support added a new formatted entry to the spool files, this change gives exipick the ability to read that entry.
2014-08-08Testsuite basics.Jeremy Harris
Not actually excercising DANE yet, this will take additions in the fakedns and probably changes in certificates.
2014-08-07Sketch in library interfaceJeremy Harris
2014-08-04Better logging of OCSP failsJeremy Harris
2014-08-02Fix broken EXPERIMENTAL_DSN compileJeremy Harris
2014-08-01Fix development-testing induced crash on second useJeremy Harris
2014-08-01Basic DANE entry pointsJeremy Harris
2014-07-31Add interface documentation for the DANE libraryJeremy Harris
2014-07-30Fix parsing of quoted parameter values in MIME headers. Bug 1513Jeremy Harris
2014-07-29Coding style closer to project normsJeremy Harris
2014-07-29Create a hosts_try_dane transport option, does nothing yetTodd Lyons
2014-07-29Framework to build dane supportTodd Lyons
2014-07-23Bug 1506: Silence static checkers.Lars Mueller
Re-adds a return NULL which was removed because it was redundant. Static checkers don't parse the logic, so adding it back to make them happy.
2014-07-23Bug 1506: Fix static typechecker outputTodd Lyons
The end of the function can never be reached because the switch is only reached if the value it is checking is valid. Putting this return silences the warnings.
2014-07-22Do not sleep for tiny periods, or hang trying to sleep for zero. Bug 1426Jeremy Harris
2014-07-22Ensure timer never set to zero for millisleep. Bug 1426Jeremy Harris
2014-07-22Massage coding style to project normJeremy Harris
2014-07-16Only expand integers for integer math onceTony Finch
2014-07-14Fix parsing of mime headersJeremy Harris
RFC2045 allows parameter values to be quoted; an embedded semicolon must then not terminate the parameter.
2014-07-14DNSSEC: fix clang warning re && in || precedencePhil Pennock
I looked and AFAICT the compiler guidance gives the correct logical binding for the code intention. ``` dnsdb.c:362:32: warning: '&&' within '||' [-Wlogical-op-parentheses] || dnssec_mode == DEFER && !dns_is_secure(&dnsa) ~~ ~~~~~~~~~~~~~~~~~~~~~^~~~~~~~~~~~~~~~~~~~~~~~ dnsdb.c:362:32: note: place parentheses around the '&&' expression to silence this warning || dnssec_mode == DEFER && !dns_is_secure(&dnsa) ^ ( ) ```
2014-07-14MacOS: fix clang redef warningPhil Pennock
2014-07-14Use Ustrlen() on a uscharPhil Pennock
2014-07-14Fix unsigned < 0 checkPhil Pennock
Two places in malware.c were using `fsize`, defined as `unsigned int`, to receive the result of `lseek()` and then checking if the value was less than 0. As clang says: ``` malware.c:1228:46: warning: comparison of unsigned expression < 0 is always false [-Wtautological-compare] if ((fsize = lseek(clam_fd, 0, SEEK_END)) < 0) { ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ^ ~ ``` Fix. Use `off_t`, which we're already using elsewhere, then use `fsize_uint` to handle off_t being potentially 64-bit, and a sanity-check on conversion which hopefully won't be optimised away by compilers.
2014-07-14Rename T_APL to T_ADDRESSESPhil Pennock
Fixes Github issue #15 Known DNS RRTYPE aliases can be found at <http://www.iana.org/assignments/dns-parameters/dns-parameters.xhtml> and `T_APL` conflicts with the `APL` RRTYPE, Address Prefix List, in experimental RFC 3123. Issue reported compilation issues on OpenBSD. Instead, use `T_ADDRESSES`.
2014-07-13Fix TLS SNI, and add regression test casesJeremy Harris
2014-07-08Reinstate SNI variables under GnuTLS. Bug 1499exim-4_83_RC3Jeremy Harris
2014-07-03Add cscope files to git ignore listTodd Lyons
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-27 13:31:54 +0000